Yazılar

FBI Issues Urgent Warning for All Gmail Users Over New Cookie-Based Hack

/in /tarafından

The FBI has issued an urgent warning for Gmail users worldwide after detecting a new wave of cyberattacks exploiting a session cookie vulnerability that allows hackers to bypass two-factor authentication and gain full access to victims’ accounts.

With over 1.8 billion users globally, Gmail is one of the most popular email platforms — and also one of the most targeted by cybercriminals. According to the FBI, attackers are using sophisticated techniques to steal login cookies from infected devices, granting them access not just to Gmail accounts, but also to connected services like social media, online banking, and cloud storage.

The attack begins when victims unknowingly click malicious links or visit fake websites, downloading malware that silently extracts session cookies — files that store login information so users don’t have to re-enter passwords. Once stolen, these cookies allow hackers to impersonate users and access their accounts without needing credentials or authentication codes.

The FBI warns that this technique effectively neutralizes two-factor authentication, long considered one of the strongest security measures against account hijacking.

To protect users, the agency recommends:

  • Regularly deleting browser cookies.

  • Avoiding the “Remember this device” option when logging in.

  • Only visiting secure websites that use HTTPS.

  • Frequently checking account login history for suspicious activity.

Google has acknowledged that cookie theft affects users across the web and said it is developing new security measures to mitigate the threat, describing the attacks as part of a growing, lucrative cybercrime trend.

Warning for Samsung Galaxy Users: Spyware ‘Landfall’ Found Stealing Data for Nearly a Year

/in /tarafından

Cybersecurity researchers from Palo Alto Networks’ Unit 42 have discovered a dangerous Android spyware called Landfall, which has been targeting Samsung Galaxy devices for nearly a year, stealing sensitive user data without detection.

The spyware spread through a malicious DNG image sent via messaging apps like WhatsApp, exploiting a zero-day vulnerability — unknown to Samsung at the time — to take full control of the infected device.

Once activated, Landfall could access photos, messages, contacts, call logs, location data, and even the microphone. According to the report, the first signs of the campaign appeared in July 2024, but Samsung only patched the flaw (CVE-2025-21042) in April 2025, leaving users exposed for months.

The vulnerability resided in ‘libimagecodec.quram.so’, allowing remote attackers to execute arbitrary code without user interaction. The main affected models include the Galaxy S22, S23, S24, and some Galaxy Z devices running Android 13 to 15.

Researchers believe the campaign was a targeted espionage operation, primarily affecting users in the Middle East, and possibly linked to private-sector offensive actors (AOSP).

It remains unclear who developed Landfall or how many users were affected, but senior researcher Itay Cohen described it as a “precision attack” rather than a widespread infection.

Samsung has released a security patch, and experts strongly advise all Galaxy users to update their devices immediately to stay protected.

Underwater Cables: The Hidden Arteries of the AI Boom and Global Internet

/in /tarafından

Deep beneath the oceans lies one of the most crucial — yet least visible — components of modern life: underwater communication cables. Nearly 95% of the world’s international data and voice traffic flows through this vast network of almost one million miles of fiber-optic lines connecting continents.

These cables carry everything from financial transactions and government communications to video calls, cloud services, and AI data transfers. As artificial intelligence grows more data-hungry, investment in subsea infrastructure is accelerating at record speed.

Between 2025 and 2027, global spending on subsea cables is expected to reach $13 billion, nearly double the investment made over the previous three years, according to TeleGeography.

“AI is increasing the need that we have for subsea infrastructure,” said Alex Aime, vice president of network investments at Meta. “Without that connectivity, you just have expensive warehouses.”

Tech giants are now the biggest investors. Meta’s Project Waterworth, a 50,000-kilometer cable linking five continents, will be the longest in the world. Amazon’s Fastnet, connecting the U.S. and Ireland, will deliver speeds equivalent to streaming 12.5 million HD movies simultaneously. Google has funded over 30 subsea systems, while Microsoft has invested in others to bolster its Azure cloud network.

But as global reliance on these cables deepens, so do concerns about security and resilience. Damaged or sabotaged cables can cut off entire nations — as seen when Tonga lost internet access after a volcanic eruption in 2022.

While most damage stems from accidents — fishing nets or dropped anchors — analysts have noted a rise in suspected sabotage near Taiwan and in the Baltic Sea, often coinciding with geopolitical tensions. In response, NATO launched “Baltic Sentry” in early 2025 to protect critical subsea infrastructure.

The U.S. Federal Communications Commission (FCC) has also tightened rules on foreign ownership of cable systems, citing threats from China and Russia. “We’re making it difficult to connect undersea cables directly from the U.S. to adversary nations,” said FCC Chair Brendan Carr.

From the 1850 telegraph line between Dover and Calais to AI-era fiber networks, subsea cables remain the unseen lifeline of global communication — and the quiet battleground of the world’s next digital conflict.